Terra Vita Hub - Operational Assurance Summary (Redacted Template)
Two-page public summary template for IT/security, procurement, vendor-risk and operational assurance reviewers. v253.

Terra Vita Hub is institutional governance and workflow software, reviewed as enterprise assurance infrastructure - not a financial service, rating activity, or MRV methodology.

Current attestation posture
This public summary clarifies status without over-claiming. Supporting evidence is provided under NDA or protected diligence.
Domain | Public status | Evidence to request
SOC 2 | Not asserted as completed in public materials. | Status, roadmap, control mapping or independent evidence where available.
ISO 27001 | Alignment may be described; certification is not claimed unless separately evidenced. | Policy set, control matrix, certification or readiness evidence.
Pen-testing | Sensitive findings are not public. | Frequency, scope, latest summary and remediation posture.
Residency | Deployment-configurable. | Hosting region, backup/failover, export rules, retention and deletion posture.
Key management | Model is deployment-specific. | Provider-managed, customer-managed, BYOK/HYOK availability and rotation posture.

Operational assurance domains
Domain | Reviewer test
Availability and support | SLA, support hours, incident response, RPO/RTO and disaster recovery.
Access control | Identity provider, role scoping, privileged access, revocation and logging.
Change control | Release gates, regression checks, rollback posture and evidence retention.
Integration governance | API boundaries, service accounts, data-flow map, MRV/spatial ingestion controls.
Audit reconstruction | Reviewer actions, override rationale, export register and immutable audit trail.